Uploaded image for project: 'Syncope'
  1. Syncope
  2. SYNCOPE-767

Password Policy: mustn't contain value of the following attributes case insensitive

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 1.1.3
    • Fix Version/s: 1.1.9, 1.2.8, 2.0.0-M2
    • Component/s: core
    • Labels:
      None

      Description

      Improvement of class org.apache.syncope.core.policy.PasswordPolicyEnforcer

      Instead of

      if (password.contains(word)) {
                      throw new PasswordPolicyException("Used word(s) not permitted");
      }
      

      use

      if (StringUtils.containsIgnoreCase(password, word)) {
      ...
      }
      

        Attachments

          Activity

            People

            • Assignee:
              ilgrosso Francesco Chicchiriccò
              Reporter:
              nbaiocco Nicola Baiocco
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: